Researchers discovered an unsecured database containing over 61 million records belonging to GetHealth. GetHealth describes itself as a unified solution to access health data from wearable fitness and health devices; and is compatible with Fitbit, Misfit Wearables, Microsoft Band, Strava, and Google Fit. Researchers say the database included sensitive information such as names, date of birth, weight, height, gender, and GPS logs. Although it is unknown how long the data was exposed, GetHealth has secured the exposed data and stated the issue was resolved. Researchers believe the majority of the exposed data was from Fitbit and Apple’s HealthKit.
Intro The Binary Defense threat hunting team are experts on today’s threat actor groups. In